Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/SfI-rGElCgz6_B3jQddL4Xbj1Co.roa
File: SfI-rGElCgz6_B3jQddL4Xbj1Co.roa (raw, json)
Hash identifier: aAGZjhgIuzNxk/98ljm/+jlV2Ghf9Ibv89zv9AJUpzA=
Subject key identifier: 49:F2:3E:AC:61:25:0A:0C:FA:FC:1D:E3:41:D7:4B:E1:76:E3:D4:2A
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 01910020F31D0D37BA222220DDB1538A9EC4
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/SfI-rGElCgz6_B3jQddL4Xbj1Co.roa
Signing time: Mon 29 Jul 2024 20:14:04 +0000
ROA not before: Mon 29 Jul 2024 20:14:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 83.147.192.0/24 maxlen: 24
83.147.232.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 23 Nov 2024 17:47:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:00:20:f3:1d:0d:37:ba:22:22:20:dd:b1:53:8a:9e:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jul 29 20:14:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=49f23eac61250a0cfafc1de341d74be176e3d42a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:bb:25:cc:24:d3:b9:b0:25:1a:12:5f:75:db:
20:df:aa:b7:b6:0d:75:82:44:4c:64:12:f1:42:4f:
de:c8:fe:ff:79:cb:c7:5d:33:33:04:d7:63:29:84:
ad:84:29:48:4f:5d:98:4d:8e:d2:6a:91:1a:a4:97:
fa:f3:6e:04:cb:dd:0e:65:dd:5f:7b:cc:56:ec:52:
fe:04:18:21:db:9e:be:3f:87:9a:1d:90:d3:44:84:
30:7f:77:4c:8d:87:54:c8:5b:c8:e4:05:21:40:cc:
18:ea:8e:ae:7d:4f:15:83:aa:e8:13:89:6a:43:a2:
91:f6:bc:5c:15:4b:99:92:b5:61:8c:0b:3d:c1:b9:
fd:fd:fe:6c:c6:20:f5:0a:65:3b:c4:bd:c1:fa:7f:
5b:9b:d5:cd:15:cd:34:7f:46:1d:3d:d4:5c:49:08:
2b:da:6c:c4:a1:45:50:ea:9f:51:5b:43:cc:d4:5c:
29:87:eb:f8:56:9b:4f:69:c8:b1:ac:4d:d2:27:24:
95:62:77:e2:56:40:eb:13:c3:4d:a0:c2:1d:18:07:
91:25:c1:1c:0c:3f:31:f9:cd:75:a3:3e:42:4c:5e:
1a:12:eb:39:ef:16:d5:b9:4d:39:57:82:e1:4a:be:
c5:45:ab:cc:86:af:6c:bc:f1:02:02:e8:96:f8:b6:
77:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:F2:3E:AC:61:25:0A:0C:FA:FC:1D:E3:41:D7:4B:E1:76:E3:D4:2A
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/SfI-rGElCgz6_B3jQddL4Xbj1Co.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.192.0/24
83.147.232.0/22
Signature Algorithm: sha256WithRSAEncryption
5c:3c:9c:0f:4c:aa:ce:e1:99:8e:32:be:c8:55:ef:2f:94:06:
c0:1f:1a:3d:9d:82:9f:a7:62:69:03:d1:5f:3c:cd:b7:66:19:
9c:b5:dd:0e:5d:5e:0b:82:2b:f7:a6:96:bd:88:ce:24:fc:0b:
e9:f8:7b:44:e7:ec:9f:75:14:4c:ab:b5:c2:ff:1b:6e:e0:02:
e1:a3:bf:b5:6c:89:e4:cb:b9:e5:3a:a4:15:86:cc:06:a8:0d:
14:a1:f9:61:ff:2b:97:19:3e:fc:0a:f8:c0:40:c9:b8:fe:7c:
42:4a:a6:e7:37:53:e7:4d:d3:24:2f:d8:f2:a9:4d:2b:27:78:
3c:50:88:c0:ef:c0:05:6f:57:3b:b3:1d:c0:ab:a9:0a:8c:2f:
90:b6:3f:28:59:21:11:41:54:6a:f7:5a:d9:74:fb:ae:d0:fb:
74:7f:29:3e:96:62:57:e4:a5:80:10:a8:05:b7:42:65:cd:43:
5b:46:b8:d5:a1:5e:b5:c7:fa:f5:9f:79:d1:a4:ec:0d:f6:bc:
55:37:0d:3e:34:cc:dd:52:eb:58:1e:08:c2:22:b8:cb:14:63:
97:69:74:bb:0e:be:ad:ce:8a:e5:9c:98:20:0b:f0:01:56:70:
32:13:71:31:fd:ec:43:d1:36:30:57:6f:7d:9c:22:bf:08:43:
5e:a2:dd:de
-----BEGIN CERTIFICATE-----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Generated at Sat Nov 23 19:28:18 2024 by rpki-client on console-fra.rpki-client.org